Skip navigation
VMware
Up to Discussions in VMware ESXi™ 4

This Question is Possibly Answered

1 "correct" answer available (10 pts) 1 "helpful" answer available (6 pts)
2,018 Views 25 Replies Last post: Nov 16, 2010 12:43 AM by maishsk RSS
Go to original post 1 2 Previous Next
lamw Guru vExpert
lamw
5,952 posts since
Nov 27, 2007
Currently Being Moderated
15. Jul 15, 2010 10:55 AM in response to: DSTAVERT
Re: ESXi 4.1 authentication bug?

I've just notified VMware of the issue, they'll get some engineering to take a look and provide either a clarification or KB

 

 

 

 

=========================================================================

William Lam

VMware vExpert 2009,2010

VMware scripts and resources at:

Twitter: @lamw

Getting Started with the vMA (tips/tricks)

Getting Started with the vSphere SDK for Perl

VMware Code Central - Scripts/Sample code for Developers and Administrators

VMware Developer Community

 

 

If you find this information useful, please award points for "correct" or "helpful".

*Disclaimer: VMware Employee - William Lam | http://www.virtuallyghetto.com | http://blogs.vmware.com/vsphere/automation | @lamw
DSTAVERT Guru User Moderators vExpert
DSTAVERT
10,090 posts since
Nov 30, 2003
Currently Being Moderated
16. Jul 15, 2010 10:59 AM in response to: lamw
Re: ESXi 4.1 authentication bug?

Was just about to do the same.

 

I wonder what affect there might be with AD.

-- David -- VMware Communities Moderator
tietzjd25 Enthusiast
tietzjd25
91 posts since
May 20, 2010
Currently Being Moderated
17. Jul 15, 2010 11:28 AM in response to: DSTAVERT
Re: ESXi 4.1 authentication bug?

I have not dove in too deep on the issue yet, but I sure VMware is using some kind of LUM (Linux Enable User) software with AD to function much like Edir LUM for SUSE form Novell.  There was a lot of issues with LUM and PAM on Novell's 1st and even 2nd go around, I am hoping that VMware has better luck.

 

The way it is setup sounds to me like the feature is just pulling in LDAP information from AD.

Joe Tietz VCAP-DCD Solutions Architect
maishsk Expert User Moderators vExpert
maishsk
569 posts since
Jun 1, 2005
Currently Being Moderated
18. Jul 15, 2010 11:32 AM in response to: tietzjd25
Re: ESXi 4.1 authentication bug?

I can confirm the issue as well - I performed an upgrade from the RC build
Maish - VCP - vExpert 2010

VMware Communities User Moderator

Virtualization Architect & Systems Administrator

http://technodrone.blogspot.com

Twitter

DSTAVERT Guru User Moderators vExpert
DSTAVERT
10,090 posts since
Nov 30, 2003
Currently Being Moderated
19. Jul 15, 2010 11:53 AM in response to: maishsk
Re: ESXi 4.1 authentication bug?

I can confirm the issue as well - I performed an upgrade from the RC build <br>Maish - VCP - vExpert 2010

Did you test this issue before you upgraded from GA?

-- David -- VMware Communities Moderator
maishsk Expert User Moderators vExpert
maishsk
569 posts since
Jun 1, 2005
Currently Being Moderated
20. Jul 15, 2010 12:19 PM in response to: DSTAVERT
Re: ESXi 4.1 authentication bug?

No I did not

Maish - VCP - vExpert 2010

VMware Communities User Moderator

Virtualization Architect & Systems Administrator

http://technodrone.blogspot.com

Twitter

jordan57 Enthusiast vExpert
jordan57
65 posts since
Jun 9, 2009
Currently Being Moderated
21. Jul 15, 2010 6:53 PM in response to: nirvy
Re: ESXi 4.1 authentication bug?

 

I installed a copy of build 260247 in Workstation with a 10 digit password. I can reproduce the same results.

 

 

As long as the first 8 characters are correct I can enter only the 8 or anything after the 8 and it will accept it and log me in.

 

 

 

 

VMware VCP - Consider awarding points for "helpful" and/or "correct" answers.

 

 

Blog: http://www.virtualizetips.com Twitter = @bsuhr
pironet Enthusiast vExpert
pironet
49 posts since
Jun 5, 2006
Currently Being Moderated
22. Jul 19, 2010 12:27 AM in response to: jordan57
Re: ESXi 4.1 authentication bug?

I confirm the issue with ESXi4.1.0 fresh or upgrade from ESXi4.0.

 

The workaround would be:

 

1- vi /etc/pam.d/system-auth and change this line accordingly:

password sufficient /lib/security/$ISA/pam_unix.so use_authtok nullok md5 shadow

 

save and exit the file with :wq!

 

2- change your password in DCUI,

 

3- verify that it has encrypted your root’s password using MD5 algorithm: cat /etc/shadow <- If root’s password hash starts with a ‘$1$‘ then MD5 algorithm was used.

 

N.B. Don't do that in a production environment!

 

Read more at deinoscloud.wordpress.com

 






I wish I was a virtual machine

http://deinoscloud.wordpress.com

I wish I was a virtual machine :) http://deinoscloud.wordpress.com
AlbertWT Master
AlbertWT
1,103 posts since
Apr 7, 2009
Currently Being Moderated
23. Oct 7, 2010 12:01 AM in response to: pironet
Re: ESXi 4.1 authentication bug?

thanks for sharing the tips in how to make it secure, however, may i know why you' suggesting "Don't do that in a production environment" ?

Kind Regards, AWT
Dave.Mishchen… Guru User Moderators vExpert
Dave.Mishchen…
11,904 posts since
Nov 15, 2005
Currently Being Moderated
24. Oct 8, 2010 12:16 AM in response to: AlbertWT
Re: ESXi 4.1 authentication bug?

In general when you access tech support mode you should do under the guidance of VMware support.  For this issue the "supported" change is documented here - http://kb.vmware.com/kb/1024500.




Dave

VMware Communities User Moderator

 

Now available - vSphere Quick Start Guide

Do you have a system or PCI card working with VMDirectPath?  Submit your specs to the Unofficial VMDirectPath HCL.

maishsk Expert User Moderators vExpert
maishsk
569 posts since
Jun 1, 2005
Currently Being Moderated
25. Nov 16, 2010 12:43 AM in response to: lamw
Re: ESXi 4.1 authentication bug?

Patch was released today

New Patch released - VMSA-2010-0016
Maish

VMware Communities User Moderator

http://technodrone.blogspot.com - @maishsk

Go to original post 1 2 Previous Next

Bookmarked By (0)

Share This Page

Communities